Application Security Testing: An Integral Part of DevOps
Very often, such servers are not properly configured, so, system dlls like ISAPI Extensions are allowed to view the contents of each drive, including CDROM and other removeable drives.
Just open the project, compile it and upload the DLL to the WebServer of your choice. Obviously, take care that the server is running IIS. Then using your browser, enter the URL of the ISAPI Extension. The ISAPI Extension will read the directory of the server (if it is not protected by the operating system) and allow you to view it's contents as a HTML web page. The icons which you can see are stored on www.signale.co.at, because at this time I am not able to send the images while sending the HTML page to the Client via ISAPI.